On Tue, May 07, 2002 at 11:50:04AM +1000, Colin Campbell wrote:
> Hi,
>
> On Tue, 7 May 2002, Christian Eyre wrote:
>
> > Hi,
> > I would like to configure direct connections to a secure banking site.
> > I have tried a couple of different always_direct options, but squid
> > logs show connection attempts still refer the request on to its
> > cache_peer parents.
> >
> > It'd be good to know what i'm doing wrong; thanks! Hope this is enough
> > info.
> >
> > (ps squidguard is not blocking this site (: )
> >
> > tried:
> > ------
> > 1. always_direct allow SSL_ports CONNECT
> > 2. acl banks dstdomain bendigobank.com.au
>
> acl banks dstdomain .bendigobank.com.au
When i tried it, it appears that the connection to bendigo bank does not
look to the cache peers, but connections time out.
1020741071.052 1816 ip.ip.ip.ip TCP_MISS/000 0 GET http://www.bendigobank.com.au/Rewards/side_menu.htm - NONE/- -
1020738271.287 2371 ip.ip.ip.ip TCP_CLIENT_REFRESH_MISS/000 0 GET http://www.bendigobank.com.au/ - NONE/- -
I thought I' mention I can get to another secure site, and it goes direct
and as expected:
1020741642.908 451 203.10.72.62 TCP_MISS/200 2994 CONNECT www.anz.com:443 - DIRECT/202.2.59.40 -
>
> Colin
>
-- Kind regards ChristianReceived on Mon May 06 2002 - 21:34:52 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:56 MST